RSS   Vulnerabilities for 'Flashfxp'   RSS

2012-09-19
 
CVE-2012-4992

CWE-119
 

 
Multiple buffer overflows in FlashFXP.exe in FlashFXP 4.2 allow remote authenticated users to execute arbitrary code via a long unicode string to (1) TListbox or (2) TComboBox.

 
2007-02-07
 
CVE-2007-0825

 

 
FlashFXP 3.4.0 build 1145 allows remote servers to cause a denial of service (CPU consumption) via a response to a PWD command that contains a long string with deeply nested directory structure, possibly due to a buffer overflow.

 
2003-12-31
 
CVE-2003-1483

 

 
FlashFXP 1.4 uses a weak encryption algorithm for user passwords, which allows attackers to decrypt the passwords and gain access.

 
2002-12-31
 
CVE-2002-1939

 

 
FlashFXP 1.4 prints FTP passwords in plaintext when there are transfers in the queue, which allows attackers to obtain FTP passwords of other users by editing the queue properties.

 


Copyright 2024, cxsecurity.com

 

Back to Top